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[57] ABSTRACT 

The present invention allows a mobile station to receive a 
command entered by a user for selecting among a plurality 
of possible values for an authentication key (A-key) stored 
in its memory, including a default value, a random value and 
a custom (user-defined) value for the A-key. In response to 
the command, the mobile station can set the A-key in its 
memory to the default value or to an internally generated or 
previously stored random value, or to the custom value 
entered by the user. The command, whether for selecting the 
default, random or custom A-key value, may be entered 
during number assignment module (NAM) programming of 
the mobile station. 

20 Claims, 3 Drawing Sheets 
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AUTHENTICATION KEY MANAGEMENT 
FOR MOBILE STATIONS 

BACKGROUND OF THE INVENTION 

1. Field of the Invention 

The present invention relates to wireless communication 
systems, and more particularly, to a method and apparatus 
for the management of authentication keys (A-keys) which 
are used to authenticate mobile stations in a cellular radio 
system. 

2. Related Prior Art Systems 

The prior art includes cellular radio systems which have 
been operating in the United States since the early 1980s, 
and providing telephone service to an ever growing sub- 
scriber base, presently estimated at over 20 million subscrib- 
ers. Cellular telephone service operates much like the fixed, 
wireline telephone service in homes and offices, except that 
radio frequencies rather than telephone wires are used to 
connect telephone calls to and from the mobile subscribers. 
Each mobile subscriber is assigned a private (10 digit) 
directory telephone number and is usually billed based on 
the amount of "airtime" he or she spends talking on the 
cellular telephone each month. Many of the service features 
available to landline telephone users (e.g., call waiting, call 
forwarding, three-way calling, etc.) are also generally avail- 
able to mobile subscribers. 

In the United States, cellular licenses have been awarded 
by the Federal Communications Commission (FCC) pursu- 
ant to a licensing scheme which divided the country into 
geographic service markets defined according to the 1980 
Census. Only two cellular licenses are awarded for each 
market. The two cellular systems in each market are com- 
monly referred to as the "A" system and "B" system, 
respectively. Each of the two systems is allocated a different 
frequency block in the 800 MHz band (called the A-band 
and B-band, respectively). To date, the FCC has released a 
total of 50 Mhz for cellular services (25 MHz per system). 
Mobile subscribers have the freedom to subscribe to service 
from either the A-system or the B-system operator (or both). 
Each system will assign each of its own subscribers a mobile 
identification number (MIN). The local system from which 
service is subscribed is called the "home" system. When 
travelling outside the home system, a mobile subscriber may 
be able to obtain service in a distant system if there is a 
"roaming" agreement between the operators of the home and 
"visited" systems. 

The architecture for a typical cellular radio system is 
shown in FIG. 1. A geographical area (e.g., a metropolitan 
area) is divided into several smaller, contiguous radio cov- 
erage areas, called "cells," such as cells C1-C10. The cells 
C1-C10 are served by a corresponding group of fixed radio 
stations, called "base stations," B1-B10, each of which 
includes a plurality of RF channel units (transceivers) that 
operate on a subset of the RF channels assigned to the 
system, as well known in the art. For illustration purposes, 
the base stations B1-B10 are shown in FIG. 1 to be located 
at the center of the cells C1-C10, respectively, and are 
shown to be equipped with omni-directional antennas trans- 
mitting equally in all directions. However, the base stations 
B1-B10 may also be located near the periphery or otherwise 
away from the centers of the cells C1-C10, and may 
illuminate the cells C1-C10 with radio signals directionally 
(e.g., a base station may be equipped with three directional 
antennas each covering a 120 degrees sector). 

The RF channels allocated to any given cell (or sector) 
may be reallocated to a distant cell in accordance with a 
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frequency reuse plan as is well known in the art. In each cell 
(or sector), at least one RF channel is used to carry control 
or supervisory messages, and is called the "control" or 
"paging/access" channel. The other RF channels are used to 

S carry voice conversations, and are called the "voice" or 
"speech" channels. The cellular telephone users (mobile 
subscribers) in the cells C1-C10 are provided with portable 
(hand-held), transportable (hand-carried) or mobile (car- 
mounted) telephone units, collectively referred to as "mobile 

10 stations," such as mobile stations M1-M5, each of which 
communicates with a nearby base station. Each of the 
mobile stations M1-M5 includes a controller 
(microprocessor) and a transceiver, as well known in the art. 
The transceiver in each mobile station may tune to any of the 

15 RF channels specified in the system (whereas each of the 
transceivers in the base stations B1-B10 usually operates on 
only one of the different RF channels used in the corre- 
sponding cell). 

With continuing reference to FIG. 1, the base stations 

20 B1-B10 are connected to and controlled by a mobile tele- 
phone switching office (MTSO) 20. The MTSO 20, in turn, 
is connected to a central office (not specifically shown in 
FIG. 1) in the landline (wireline) public switched telephone 
network (PSTN) 30, or to a similar facility such as an 

25 integrated system digital network (ISDN). The MTSO 20 
switches calls between wireline and mobile subscribers, 
controls signalling to the mobile stations M1-M5, compiles 
billing statistics, stores subscriber service profiles, and pro- 
vides for the operation, maintenance and testing of the 

30 system. 

When turned on (powered up), each of the mobile stations 
M1-M5 enters the idle state (standby mode) and tunes to and 
continuously monitors the strongest control channel 
(generally, the control channel of the cell in which the 

35 mobile station is located at that moment). When moving 
between cells while in the idle state, the mobile station will 
eventually "lose" radio connection on the control channel of 
the "old" cell and tune to the control channel of the "new" 
cell. The initial tuning to, and the change of, control channel 

40 are both accomplished automatically by scanning all the 
control channels in operation in the cellular system to find 
the "best" control channel (in the United States, there are 21 
"dedicated" control channels in each cellular system which 
means that the mobile station has to scan a maximum 

45 number of 21 RF channels). When a control channel with 
good reception quality is found, the mobile station remains 
tuned to this channel until the quality deteriorates again. In 
this manner, the mobile station remains "in touch" with the 
system and may receive or initiate a telephone call through 

50 one of the base stations B1-B10 which is connected to the 
MTSO 20. 

To detect incoming calls, the mobile station continuously 
monitors the current control channel to determine whether a 
page message addressed to it (i.e., containing its MIN) has 

55 been received. A page message will be sent to the mobile 
station, for example, when an ordinary (landline) subscriber 
calls the mobile subscriber. The call is directed from the 
PSTN 30 to the MTSO 20 where the dialed number is 
analyzed. If the dialed number is validated, the MTSO 20 

60 requests some or all of the base stations B1-B10 to page the 
called mobile station throughout their corresponding cells 
C1-C10. Each of the base stations B1-B10 which receive 
the request from the MTSO 20 will then transmit over the 
control channel of the corresponding cell a page message 

65 containing the MIN of the called mobile station. Each of the 
idle mobile stations M1-M5 which is present in that cell will 
compare the MIN in the page message received over the 
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control channel with the MIN stored in the mobile station. The primary parameters that regulate the various mobile 

The called mobile station with the matching MIN will registration functions include the next registration 

automatically transmit a page response over the control (NXTREG) value which is stored in each mobile station and 

channel to the base station, which then forwards the page the system identification (SID), location area identification 

response to the MTSO 20. Upon receiving the page s (LOCAID), registration identification (REGID) and regis- 

response, the MTSO 20 selects an available voice channel in tration increment (REGINCR) values which are broadcast 

the cell from which the page response was received (the by the system on the control channel of each cell. The SID 

MTSO 20 maintains an idle channel list for this purpose), is a digital number which uniquely identifies the serving 

and requests the base station in that cell to order the mobile cellular system. The LOCAID is a digital number which 

station via the control channel to tune to the selected voice 10 identifies a particular location area comprised of one or more 

channel. A through-connection is established once the cells in the system. The REGINCR defines the length of the 

mobile station has tuned to the selected voice channel. periodic registration interval. The REGID is a 20-bit counter 

When, on the other hand, a mobile subscriber initiates a that is stepped by one unit in every REGID message 

call (e.g., by dialing the telephone number of an ordinary transmitted to the mobile station. The NXTREG value 

subscriber and pressing the "send" button on the telephone 15 indicates when periodic registration is due and is calculated 

handset in the mobile station), the dialed number and internally in the mobile station by adding the current values 

MIN/ESN pair for the mobile station are sent over the of REGID and REGINCR. A mobile station will register 

control channel to the base station and forwarded to the with the serving system if either the SID or LOCAID 

MTSO 20, which validates the mobile station, assigns a received over the control channel is different from the 

voice channel and establishes a thro ugh -connection for the 20 corresponding value which it stored the last time it received 

conversation as described before. If the mobile station a registration confirmation message (thus implying that the 

moves between cells while in the conversation state, the mobile station has travelled to a new system or location area, 

MTSO 20 will perform a "handoff" of the call from the old respectively), or if the REGID value received over the 

base station to the new base station. The MTSO 20 selects control channel is greater than or equal to the stored 

an available voice channel in the new cell and then orders 25 NXTREG (thus implying that a periodic registration is due), 

the old base station to send to the mobile station on the The mobile station updates the NXTREG value (with the 

current voice channel in the old cell a handoff message sum of the current REGID and REGINCR values) upon the 

which informs the mobile station to tune to the selected receipt of each registration confirmation message and, also, 

voice channel in the new cell. The handoff message is sent after every successful voice channel designation (i.e., call 

in a "blank and burst" mode which causes a short but hardly 30 originations and receptions are treated like normal periodic 

noticeable break in the conversation. Upon receipt of the registrations since by making or receiving a call a mobile 

handoff message, the mobile station tunes to the new voice station shows its activity and location), 

channel and a through-connection is established by the Access to the cellular system of FIG. 1 by any of the 

MTSO 20 via the new cell. The old voice channel in the old mobile stations M1-M5, whether for call origination or 

cell is marked idle in the MTSO 20 and may be used for 35 reception or for registration purposes, is controlled on the 

another conversation. Furthermore, when travelling outside basis of a mobile identification number (MIN) and an 

the system, the mobile station may be handed off to a cell in electronic serial number (ESN) which are stored in the 

an adjacent system if there is a roamning agreement between mobile station. The MIN identifies the service subscription 

the operators of the two systems. and is a binary representation of the 10-digil directory 

In order to properly direct incoming calls to a mobile 40 telephone number of the mobile subscriber. The MIN is 

station which is moving around between different cells or assigned by the cellular service provider (home system 

systems, it is necessary to keep track of the location and operator) and is usually programmed into a mobile station 

activity of the mobile station. For this purpose, an autono- either when purchased by the original user or when sold to 

mous registration process has been used in which the mobile another user (i.e., at the time of service installation). The 

station sends a registration message to the system upon 45 MINs of legitimate (paying) subscribers are stored by the 

entering a new system area or a new location area (i.e., a MTSO 20. The ESN uniquely identifies the mobile station 

predefined group of cells in the system), or at predetermined and is a digital number which is supplied by the manufac- 

intervals defined by the system operator. The system area turer and permanently stored in the mobile station (i.e., 

and location area registration functions can be used to factory-set, not to be altered in the field). The ESNs of 

identify the current location of the mobile station so that it 50 mobile stations which have been reported to be stolen can be 

can be paged in its actual (or most likely) location rather appropriately marked by the MTSO 20 and denied service 

than in all locations in the system. Each time the system permanently. 

receives a registration message from a mobile station in its Besides the MIN and ESN, each mobile station is also 

area, it marks this mobile station as being active and present identified by a station class mark (SCM) which designates 

in its system area, or in the particular location area contain- 55 the transmit power class, mode and bandwidth for the 

ing the cell of the base station which received the registra- mobile station. Mobile stations in different power classes 

tion message, and then sends a registration confirmation (portable, transportable or vehicular) will transmit at one of 

message to this mobile station. The periodic registration several specified power levels within different output power 

function, on the other hand, is used to determine whether a ranges (0.6, 1.6 or 4.0 Watts). The transmit power level 

mobile station is active (powered and within radio range) in 60 within a given range can be increased or decreased by a 

a cellular system. Incoming calls to inactive mobile stations power change command from the base station. Furthermore, 

can be routed immediately to a recorded message (e.g., "The some mobile stations have the ability to operate in a "dis- 

mobile customer you have called has turned off the mobile continuous" transmission (DTX) mode in which they can 

unit or travelled out of the service area/*) without ever switch autonomously between two transmitter power level 

paging these mobile stations. This reduces the paging load 65 states ("DTX high" and "DTX low"). In addition, some 

and results in more efficient use of the limited control mobile stations are set to operate within only the "basic" 

channel capacity. frequency range initially allocated to cellular systems while 



03/18/2004, EAST Version: 1.4.1 



5,887,251 

5 6 

others are also set to operate in the "extended" frequency capacity, can be maximized only by the use of digital 

range which was later allocated. Like the MIN and ESN, the technology. Thus, in an effort to go digital, the E1A/T1 A 

relevant SCM information is stored in each mobile station. developed a number of air interface standards which use 

User authorization for cellular service is usually per- digital voice encoding (analog-to-digital conversion and 

formed at every system access (i.e., registration request, call s v °i ce compression) and time division multiple access 

origination or page response) by a mobile station. When (TDM A) or code division multiple access (CDMA) tech- 

making an access, the mobile station forwards the MIN, niques to multiply the number of voice circuits 

ESN and SCM to the system. The MTSO 20 maintains a (conversations) per RF channel (i.e., to increase capacity), 

"white list" containing the M IN/ESN pairs of valid home These standards include IS-54 (TDMA) and IS-95 (CDMA), 

subscribers and a "black list" containing the ESNs of stolen 10 both of which are "dual mode" standards in that they support 

or otherwise unauthorized mobile stations. The MTSO 20 the use of the original AMPS analog voice and control 

checks the received MIN/ESN pair to determine whether it channels in addition to digital speech channels defined 

belongs to a valid home subscriber and, if not, whether the within the existing AMPS framework (so as to ease the 

MIN belongs to an authorized "roamer" from another sys- transition from analog to digital and to allow the continued 

tern and whether the ESN has been blacklisted. If the 15 use of existing analog mobile stations). The dual-mode 

MIN/ESN pair is not valid, or if the MIN is not recognized IS-54 standard, in particular, has become known as the 

or if the ESN is blacklisted, the mobile station may be denied digital AMPS (D-AMPS) standard. More recently, the EI A/ 

access. Otherwise, the user is considered legitimate and the TLA has developed a new specification for D-AMPS, which 

access is accepted. Service is then provided and controlled includes a digital control channel suitable for supporting 

according to the received SCM information. 20 public or private microcell operation, extended mobile sta- 

The original cellular radio systems, as described generally tion battery life, and enhanced end-user features. This new 

above, used analog transmission methods, specifically fre- specification builds on the IS-54B standard (the current 

quency modulation (FM), and duplex (two-way) RF chan- revision of IS-54), and it is known as IS-136, (All of the 

nels in accordance with the Advanced Mobile Phone Service foregoing EIA/TI A standards are hereby incorporated herein 

(AMPS) standard. According to the AMPS standard, each 2 s by reference as may be necessary for a full understanding of 

control or voice channel between the base station and the these background developments. Copies of these standards 

mobile station uses a pair of separate frequencies consisting may be obtained from the Electronics Industries 

of a forward (downlink) frequency for transmission by the Association, 2001 Pennsylvania Avenue, N.W., Washington, 

base station (reception by the mobile station) and a reverse D.C. 20006). 

(uplink) frequency for transmission by the mobile station 30 In addition to providing for a new, digital radio transmis- 
(reception by the base station). The AMPS system, therefore, sion format, each of IS-54B and IS-136 specifies an authen- 
is a single -channel-per-carrier (SCPC) system allowing for tication procedure for confirming the identity of mobile 
only one voice circuit (telephone conversation) per RF stations demanding service in a cellular system. This 
channel. Different users are provided access to the same set procedure, which also has been imported into newer analog 
of RF channels with each user being assigned a different RF 35 standards such as IS -91 for narrowband AMPS (N-AMPS) 
channel (pair of frequencies) in a technique known as and Revision A of EIA/TIA-553 (EIA/TIA-553A currently 
frequency division multiple access (FDMA). This original under development), was developed in response to the 
AMPS (analog) architecture forms the basis for an industry widespread, fraudulent use of MIN/ESN pairs to steal eel- 
standard sponsored by the Electronics Industries Association hilar service from existing analog systems. Many of the 
(EIA) and the Telecommunication Industry Association 40 mobile stations which have been sold to date do not comply 
(TIA), and known as EIA/TIA-553. with the tamper-proof requirement for ESN and, 
In the late 1980s, however, the cellular industry in the consequently, can be easily programmed with a new ESN 
United States began migrating from analog to digital (there is no tamperproof requirement for MIN and, hence, all 
technology, motivated in large part by the need to address mobile stations are easily programmed with a new MIN). 
the steady growth in the subscriber population and the 45 Thus, these mobile stations can be programmed to transmit 
increasing demand on system capacity. It was recognized any MIN/ESN pair so as to "trick" the system into granting 
early on that the capacity improvements sought for the next access. Further background on this MIN/ESN "tumbling" 
generation cellular systems could be achieved by either "cell and the resultant revenue and service losses can be found in 
splitting" to provide more channels per subscribers in the the article entitled "Cellular Fraud" by Henry M. 
specific areas where increased capacity is needed, or by the 50 Kowalczyk, in Cellular Business, dated March 1991, at pp. 
use of more advanced digital radio technology in those 32^35. 

areas, or by a combination of both approaches. According to Fraud in the form of MIN/ESN tumbling arose primarily 

the first approach (cell splitting), by reducing the transmit in a "manual roaming" environment where the cellular 

power of the base station, the size of the corresponding cell systems were not interconnected on a real-time basis. Since 

(or cell radius) and, with it, the frequency reuse distance are 55 each MTSO usually contained a list only of valid MIN/ESN 

reduced thereby resulting in more channels per geographic pairs belonging to the home subscribers, it did not have 

area (i.e., increased capacity). Additional benefits of a immediate access to the counterpart lists in the other sys- 

smaller cell include a longer "talk time" for the user since terns. Hence, by using a roamer MIN (i.e., a 10-digit 

the mobile station will use substantially lower transmit directory telephone number containing an area code other 

power than in a larger cell and, consequently, its battery will 60 than the local area code of the home system operator) and a 

not need to be recharged as often. non-blacklisted ESN, a fraudulent mobile station could 

While cell splitting held the promise of improving both receive service from the local cellular system until an 

capacity and coverage for the growing mobile subscriber indication of the invalidity of the MIN/ESN pair has been 

base, the actual capacity gains were limited by the use of the received (perhaps hours later) from the home system of the 

analog AMPS technology. It was commonly believed that 65 pretending roamer (or from a clearing house). In an "auto- 

the desired capacity gains, and indeed the effectiveness of matic roaming" environment, however, the cellular systems 

the microceilular (cell splitting) concept in increasing are networked together on a real-time basis in accordance 
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with the provisions of the EIA/TIA standard IS-41 (or 
through a proprietary signalling protocol). Consequently, the 
serving cellular system can obtain verification of a MIN/ 
ESN pair from the home system virtually immediately and 
can, therefore, deny service to a MIN/ESN tumbler without 5 
significant delay. 

Of more concern recently has been a type of fraud known 
as "cloning" in which a fraudulent user adopts the bona fide 
MIN/ESN pair of a valid (paying) subscriber. The fraudulent 
user may surreptitiously acquire a bona fide MIN/ESN pair, 10 
or even a list of valid MIN/ESN pairs, in several ways. For 
example, in some instances, bona fide MIN/ESN numbers 
are printed on, and may be read from, a label which is affixed 
to a mobile station belonging to a valid subscriber. In other 
instances, a list of bona fide MIN/ESN pairs may be pur- 15 
chased on the "black market" or directly from an employee 
of the cellular operator. In addition, since each mobile 
station transmits the MIN/ESN pair to the serving exchange 
at every system access, one or more bona fide MIN/ESN 
pairs may be intercepted by listening to radio transmissions 2Q 
on the (analog) control channel. 

The authentication procedures in the newer industry stan- 
dards seek to distinguish between legitimate mobile stations 
and fraudulent clones through the synchronized generation 
of cryptovariables from identical sets of shared secret data 2 5 
(SSD) which are stored and periodically updated in a mobile 
station and its serving base station. These cryptovariables 
are exchanged between the mobile station and the base 
station for the purpose of confirming the identity of the 
mobile station. Since a clone mobile station is assumed not 30 
to have access to the initial value of the SSD or the 
subsequent history of SSD updates in the legitimate mobile 
station, its cryptovariables will not match those of the base 
station and therefore it can be identified as a clone. The SSD 
for each mobile station is stored in the MTSO of the home 35 
system, or in a separate subscriber database called a "home 
location register'' (HLR) which is connected to that MTSO, 
and provided to the serving base station. Each mobile station 
also stores its SSD in memory. 

In the process of authentication, the base station generates 40 
and sends to the mobile station a random bit pattern, called 
RAND or RANDU, on the analog control channel (ACCH), 
digital control channel (DCCH), analog voice channel 
(AVCH) or digital traffic channel (DTCH). Each of the 
mobile station and the base station uses RAND or RANDU, 45 
a portion of SSD called SSD-A (the remaining portion, 
SSD-B, is used for encryption, and not for authentication), 
along with other parameters (e.g., the MIN and ESN of the 
mobile station) as inputs to a Cellular Authentication and 
Voice Encryption (CAVE) algorithm, which is defined in 50 
Appendix A to each of IS-54B and IS-136, to generate an 
authentication response called AUTHR or AUTHU 
(depending on whether RAND or RANDU is used, 
respectively). The authentication response computed in the 
mobile station is sent to the base station to be compared with 5s 
the authentication response computed in the base station. If 
the authentication responses match, authentication is con- 
sidered successful (i.e., the base station and the mobile 
station are considered to have identical sets of SSD). 
However, if the comparison at the base station fails, the base 60 
station may deny service to the mobile station or commence 
the process of updating the SSD. 

The procedure for updating SSD for any mobile station 
involves the application of CAVE initialized with mobile 
station-specific information (ESN), certain random data 65 
(RANDSSD), and a secret, permanent authentication key 
(A-key) which is uniquely assigned to the mobile station. 
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For security reasons, the A-key is never transmitted over the 
air interface between the base station and the mobile station, 
or over the network interface between different cellular 
systems. The A-key is stored in the MTSO or the HLR and 
must be entered into the memory of the mobile station for 
use in updating the SSD. The A-key can be entered into the 
mobile station at the time of mobile service activation by an 
authorized technician using the standard number assignment 
module (NAM) programming mode, or at any time by the 
mobile subscriber using a separate Akey programming mode 
as disclosed in U.S. Pat. No. 5,551,073, which is incorpo- 
rated herein by reference. For any mobile stations which 
have multiple NAMs and use multiple MINs (i.e., where the 
user subscribes to service from multiple home systems in 
order to avoid roamer charges in those systems), multiple 
A-keys may have to be entered into the mobile station, one 
for each NAM (MIN). A different A-key should be entered 
for each MIN since, for security reasons, the A-key can be 
known only to the mobile station and the MTSO or HLR of 
the home system, and should not be passed from system to 
system as the mobile station roams. Thus, SSD updates (in 
which the A-key is used to generate new SSD values) are 
carried out only in the mobile station and its associated home 
system MTSO or HLR, which then sends the SSD values 
(but not the A-key) to the serving system. 

Because of the importance of the A-key for authentication 
purposes, the issue of A-key security management has been 
of concern to the industry. It was originally envisioned that 
each mobile station would be shipped from the factory with 
a default A-key consisting of all binary zeros and that an 
operational value for the A-key would be assigned by the 
system operator when a mobile subscriber signed up for 
service. The assigned A-key value then would be entered by 
the service technician or the user. However, because of the 
administrative burden and the security risk associated with 
the delivery (e.g., through the post) of numerous A-keys to 
service technicians or mobile subscribers, it was deemed 
more preferable that the manufacturers of the mobile sta- 
tions would ship each of the mobile stations with a random 
A-key value. Any manufacturer then could provide any 
system operator with a list of ESN/random A-key combi- 
nations in a secure database, for example. The A-key values 
from this list, in turn, would be programmed into the home 
system MTSO or HLR and used by the system operator for 
authenticating the corresponding mobile stations. 

At present and for the foreseeable future both of the 
foregoing approaches to A-key management (default A-key 
and random A-key) have been and are expected to be used 
in the cellular industry. The default A-key approach is 
followed by some operators because of its simplicity and/or 
because of the inability of some MTSOs to be programmed 
with specific A-key values (random or otherwise) for all of 
the various subscribers. A few of these operators have even 
resorted to resetting the A-key to the default value in all 
cases, including those in which the A-key may have been 
initially set to a random value. Other operators, however, 
prefer to use the random A-key approach because of its 
added security. Still other operators who seek additional 
security recognize that an ESN/random A-key list can 
become excessive, unmanageable or corrupted, and that for 
multiple NAM mobile stations the same random A-key will 
be available to multiple carriers thus compromising security 
(unless the manufacturer is willing to program different 
random A-key values for the different NAMs in which case 
the ESN/A-Key list may become even larger). Such opera- 
tors may prefer to have an individual (custom) A-key 
assigned to the mobile subscriber at the time of service 
activation for entry into his mobile station. 
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Given this background and the proclivity of some sub- for selecting among a plurality of possible values for the 

scribers to switch between different service providers A-key, including a default value and a random value; means 

(operators) possibly having different A-key management for setting the A-key in the memory to the default value if 

policies, the re is a need for an A-key management procedure the command indicates the selection of the default value; 

which integrates the existing approaches, while at the same s and means for setting the A-key in the memory to the 

time avoiding their shortcomings such as the cost of main- random value if the command indicates the selection of the 

taining lists of random A-keys for the mobile stations from random value. According to this other aspect, the possible 

each manufacturer. A-key values may further include a user-entered value and 

SUMMARY OF THE INVENTION f ^l™ ^"> m P™ ™** f ° r se ^S 

10 the A-key in the memory to the user-entered value if the 
The present invention allows the selection of an A-key command indicates the selection of the user-entered value, 
from among the various possible default, random and cus- The mobile station may further comprise means for display- 
torn values during NAM programming of a mobile station. m g a ^ of possible alphanumeric identifications for the 
If a default value is desired, the A-key can be set to this value user-entered A-key value from which list an alphanumeric 
in the field and not only at the time of manufacture of the 15 identification can be selected for storing with the user- 
mobile station. Similarly, if a random value is selected, this entered A-key value in the memory. The stored A-Key value 
value may be generated internally in the mobile station using tne n can be recalled from memory and displayed using its 
a set of input data and an algorithm which are also available alphanumeric identification rather than displaying its actual 
to the home system. Alternatively, the random value may be value which should remain hidden from view for security 
precomputed by the manufacturer using such algorithm and 2 o purposes, 

then stored in the mobile station for possible selection as the ^ ^ 0(her te objec(s and advant s of lhe 

A-key. Thus^ehomesystemormanufacturerofthemobile , invention wi]1 become readily apparent from , he 

station need not maintain a list of bSN/random A-key values accompanying drawillgs and lhe detailed description as set 

since it can use a predefined algorithm to arrive at a ^ QT ^ |, e [ ow 

duplicate of the random A-key value generated or previously 2 s 

stored in the mobile station. Furthermore, if the mobile BRIEF DESCRIPTION OF THE DRAWINGS 
station of the present invention should switch subscriptions 

from a home system which prefers to use a random A-key to The present invention will be better understood and its 

a new home system which prefers to use the default A-key, numerous objects and advantages will become apparent to 

the A-key stored in the mobile station can be readily reset 30 those skilled in the art by reference to the following detailed 

from the random A-key value to the default value (or vice description taken in conjunction with the accompanying 

versa). If at any time a custom A-key is to be used, the drawings in which: 

present invention also provides the facility to enter such an FIG. 1 shows the architecture of a conventional cellular 

A-key into the mobile station. radio system including a plurality of mobile stations and 

In one aspect, the present invention provides a method for 35 base stations; 

configuring a mobile station with an authentication key FIG. 2 is a simplified block diagram of a mobile station 

(A-key) which is stored in a memory of the mobile station. tnat can t, c used in accordance with the present invention; 

The method comprises the steps of enabling the mobile FIG. 3 is a block diagram of a NAM information block 

station to receive a command entered by a user for selecting st0fed m me EEPR0 M of the mobile station of FIG. 2; and 

among a plurality of possible values for the A-key, including 40 A . a , ^ P i( A , ... j . 

a default value and a random value; setting the A-key in the 4 15 a flow chart of the A-key selection and storage 

memory to the default value if the command indicates the ste P s executed by the mobile station of FIG. 2 in accordance 

selection of the default value; and setting the A-key in the ^ P reseQt * ventl011 - 

memory to the random value if the command indicates the DETAILED DESCRIPTION 

selection of the random value. The random value may be 45 

generated in the mobile station in response to the command Referring now to FIG. 2, there is shown a simplified block 

indicating the selection of the random value or, alternatively, diagram of a mobile station 100 which may be used in 

it may be a previously generated random value which is accordance with the present invention. The mobile station 

stored in the mobile station for use as the A-key if the 100 comprises a microphone 102, a loudspeaker 104, a 

command indicates the selection of the random value. In 50 keyboard or keypad 106, an alphanumeric or graphical 

either case, the random A-key value can be generated from display 108, a user interface 110, a microprocessor 112, a 

input data including the electronic serial number (ESN) of program memory 114, a random access memory (RAM) 

the mobile station and the system identification of the home 116, an electrically erasable programmable read only 

system (SIDH) of the mobile station, thus ensuring a dif- memory (EEPROM) 118, a radio frequency (RF) section 

ferent random A-key value for each mobile station and for 55 120 and an antenna 122. The user interface 110 includes 

each NAM stored in the mobile station. Furthermore, speech and data processing circuitry (not specifically shown) 

according to this method, the possible A-key values may such as a codec for performing analog-to-digital (A/D) 

further include a custom value to be entered by the user and conversion of a transmit speech signal from the microphone 

the method may further comprise the step of setting the 102 and digital-to-analog (D/A) conversion of a received 

A-key in the memory to the custom value entered by the user 60 speech signal destined for the loudspeaker 104. The user 

if the command indicates the selection of the custom value. interface 110 further includes a digital signal processor 

The command, whether for selecting the default, random or (DSP) for performing gain/attenuation, filtering, 

custom A-key value, may be entered during number assign- compression/decompression, channel coding/decoding and 

ment module (NAM) programming of the mobile station. any other desired processing (e.g., in accordance with 

In another aspect, the present invention provides a mobile 65 IS-136) of speech and user or control data, 

station comprising a memory for storing a value for an The RF section 120 includes RF processing circuitry (not 

authentication key (A-key); means for entering a command specifically shown) such as an RF transmitter for modulating 
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the transmit speech or data onto an analog carrier signal, storage in the corresponding NAM block (as shown in FIG. 

up-converting the modulated signal to the selected channel 3). After the values for these (and possibly other) parameters 

frequency and then filtering, amplifying and transmitting the have been entered, the display 108 will prompt user at step 

signal through the antenna 122. The RF section 120 further 204 to select among a default A-key, a random A-key or a 

includes an RF receiver for down-converting a modulated 5 custom A-key, or alternatively to add an alphanumeric tag to 

signal received through the antenna 122 into an intermediate the current A-key stored in the NAM block, 

frequency (IF) signal and then filtering and demodulating If, at step 204, the user had selected the default A-key 

the IF signal for further processing in the DSP. The micro- option, the A-key in the NAM block will be set to the value 

processor 112 controls the overall operation of the mobile zero at step 206. However, if the user had selected the 

station 100 through software programs stored in the program 10 random A-key option at step 204, a pseudo-random A-key 

memory 114. These programs include, for example, execut- will be generated at step 208 based on the SIDH entered 

able instructions for each of the transmit and receive opera- during NAM programming, the ESN of the mobile station 

tions on the digital control channel (DCCH) and the digital and possibly the SEED value. The SEED value can be any 

traffic channel (DTCH) as specified in IS-136. The RAM value available in both the mobile station and the system 

116 holds the values of temporary variables used in the 15 such as the RAND or REGID value transmitted over the 

execution of these iastructions. Parameters whose values control channel or, alternatively, a predetermined value 

must be preserved after power is turned off in the mobile stored or generated in both the mobile station and the 

station 100 will be stored in the EEPROM 118 (or in a system. The SIDH, ESN and/or SEED are used as inputs to 

similar non-volatile or flash memory). Such parameters the CAVE algorithm or another algorithm that is capable of 

include the mobile identification number (MIN), the elec- 20 generating a pseudo-random A-key value having a normal 

tronic serial number (ESN) of the mobile station 100, the distribution. The pseudo-random A-key value generated by 

station class mark (SCM), the system identification of the this algorithm is stored in the appropriate NAM block at step 

home system (SIDH), and the authentication key (A-key). 210. 

Referring next to FIG. 3, there is shown a block diagram In an alternative embodiment of the present invention, a 

of a number assignment module (NAM) information block 15 pseudo-random A-key value can be precomputed for any 

which is stored in the EEPROM 118 in accordance with the SIDH/ESN combination at the factory using an algorithm in 

present invention. During NAM programming a service the manner described above. For example, a particular 

technician authorized by a cellular carrier (operator) enters cellular operator may order a number of mobile stations 

the values of certain subscriber-specific, mobile-specific and from the manufacturer, all of which are specified to have a 

system specific parameters into the mobile station in order to 30 random A-key value. The manufacturer then can use the 

setup and configure the mobile station for operation in the SIDH of this operator and the ESN of each mobile station to 

system of that carrier. As shown in FIG, 3, a typical NAM generate a corresponding random A-key value which is 

information block includes the MIN, SCM and SIDH (which stored in the memory of the mobile station. In this case, 

are specific to the subscriber, mobile station and system, when the user at step 204 selects the random A-key option, 

respectively) as well as other parameters which are not 35 the stored random A-key value will be written into the 

specifically shown in FIG. 3. In the case of subscribers who appropriate location in the NAM block as shown in FIG. 3. 

have signed up for service from multiple carriers, the It will be readily appreciated that, for a multiple NAM 

EEPROM 118 will contain multiple NAM information mobile station, multiple random A-key values may be pre- 

blocks of the type shown in FIG. 3, one for each of these computed and stored in the memory of the mobile station, 

carriers. It will be appreciated that although each of the 4Q one A-key for each NAM. Thus, after the user has entered 

parameters in FIG. 3 is shown to be contained in a single the relevant values into a particular NAM block at step 202 

memory location, in practice different portions of the value and then selected the random A-key option at step 204 as 

of any parameter may be stored in different memory loca- shown in FIG. 4, the stored random A-key value associated 

tions due to memory size or other constraints. with that NAM will be written into the corresponding NAM 

With continuing reference to FIG. 3, each NAM infor- 45 block, 
mation block in the mobile station 100 will include an A-key It will be recognized that the generation of a random 
value which, for security reasons, may be encoded or A-key (or more accurately a "pseudo-random" A-key since 
encrypted and/or spread over several memory locations it is generated with an algorithm) in accordance with the 
within the corresponding NAM block. According to the present invention avoids the necessity and cost of maintain - 
present invention, this A-key value can be a "default" (all 50 ing an ESN/random A-key list for all mobile stations pro- 
zeros) value, a "random" (randomly generated) value or a duced by each manufacturer since either the manufacturer or 
"custom" (user-defined) value. Furthermore, as also shown the home system can calculate the random A-key value for 
in FIG. 3, the NAM information block may include a any mobile station at any time using predetermined input 
"SEED" value which may be used in generating the random data (e.g., SIDH, ESN and/or SEED) in a predetermined 
A-key value in accordance with the present invention. The 55 algorithm (e.g., CAVE). Furthermore, since the ESN of any 
selection and storage of the desired A-key is described mobile station is unique, each mobile station will have a 
further below. unique, random A-key value thus increasing the security of 

Referring next to FIG. 4, there is shown a flowchart of the the system. In addition, since the SIDH of any system is 

A-key selection and storage procedure performed by a unique, the value of the random A-key (which also is based 

mobile station in accordance with the present invention. This 60 on the SIDH) will be different for each subscription (NAM 

procedure is initiated by the user invoking the NAM pro- block) maintained by the same mobile station (ESN). In 

gramming mode at step 200. While in NAM programming, other words, different "home" carriers for the same mobile 

the display 108 will prompt the user to enter the values for station will use different random A-key values thus further 

parameters in a particular NAM block (i.e., associated with increasing security by eliminating the need to share the same 

a particular cellular operator). Thus, for example, the user at 65 A-key value among these carriers, 

step 202 may enter through the keyboard 106 the MIN and Returning to step 204, the user may have selected the 

SIDH assigned by or for a particular "home" system for option of entering a specific (custom) A-key into the current 
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NAM block. At step 212 the user enters the digits of the 
A-key through the keyboard 106. These digits are validated 
at step 214 through a verification procedure that is specified, 
for example, in Appendix A to each of IS-54 and IS-136. 
Once the entered A-key is validated, it will be stored in the 
current NAM block at step 216. Next at step 218 a list of 
alphanumeric tags will appear on the display 108 so that the 
user can select one of these tags to serve as an identification 
for the just -entered A-key. This step allows the user to later 
recall and display the A-key using its identification since the 
A-key itself is not to be displayed for security reasons. The 
tag will inform the user that the current A-key in the 
corresponding NAM block is neither a default nor a random 
A-key but is a custom A-key value that was previously 
stored in this NAM block. In general, the tag may be any 
predefined alphanumeric string such as the date on which the 
custom A-key value was last entered. Once the tag has been 
selected by the user, it will be associated with the stored 
A-key at step 220. 

If at step 204, the user had selected the option of entering 
a tag for the current A-key stored in the NAM block, the 
value of that A-key, which may have been previously 
entered using the separate A-key entry procedure as 
described in U.S. Pat. No. 5,551,073 (incorporated herein by 
reference), will not be changed and the procedure simply 
jumps to steps 218-220 for selection and storage of an 
appropriate tag. 

The foregoing detailed description shows only certain 
particular embodiments of the present invention. However, 
those skilled in the art will recognize that many modifica- 
tions and variations may be made without departing sub- 
stantially from the spirit and scope of the present invention. 
Accordingly, it should be clearly understood that the form of 
the invention described herein is exemplary only and is not 
intended as a limitation on the scope of the invention as 
defined in the following claims. 

I claim: 

1. A method for configuring a mobile station with an 
authentication key (A-key) which is stored in a memory of 
said mobile station, the method comprising the steps of: 

enabling said mobile station to receive a command 
entered by a user for selecting among a plurality of 
possible values for said A-key, including a default value 
and a random value; 

setting said A-key in said memory to said default value if 
said command indicates the selection of said default 
value; and 

setting said A-key in said memory to said random value 
if said command indicates the selection of said random 
value, 

2. The method of claim 1 wherein said command is 
entered during number assignment module (NAM) pro- 
gramming of said mobile station, 

3. The method of claim 1 wherein said default value is 
zero. 

4. The method of claim 1 wherein said random value is a 
function of predetermined data including the electronic 
serial number (ESN) of said mobile station. 

5. The method of claim 4 wherein said data further 
includes the system identification of the home system 
(SIDH) of said mobile station. 
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6. The method of claim 4 wherein said data further 
includes a predetermined SEED value. 

7. The method of claim 1 wherein said possible A-key 
values further include a custom value to be entered by said 
user and the method further comprises the step of setting 
said A-key in said memory to the custom value entered by 
said user if said command indicates the selection of said 
custom value. 

8. The method of claim 7 wherein said custom value is 
validated after being entered by said user and prior to setting 
said A-key in said memory to said custom value. 

9. The method of claim 7 further comprising the step of 
enabling said mobile station to receive an alphanumeric 
identification of said custom value entered by said user for 
storing with said custom value in said memory. 

10. A mobile station comprising: 

a memory for storing a value for an authentication key 
(A-key); 

means for entering a command for selecting among a 

plurality of possible values for said A-key, including a 

default value and a random value; 
means for setting said A-key in said memory to said 

default value if said command indicates the selection of 

said default value; and 
means for setting said A-key in said memory to said 

random value if said command indicates the selection 

of said random value. 

11. The mobile station of claim 10 wherein said memory 
comprises an electrically erasable programmable read only 
memory (EEPROM). 

12. The mobile station of claim 10 wherein said command 
entering means comprises an alphanumeric keyboard. 

13. The mobile station of claim 10 wherein said command 
is entered during number assignment module (NAM) pro- 
gramming of said mobile station. 

14. The mobile station of claim 10 wherein said default 
value is zero. 

15. The mobile station of claim 10 wherein said random 
value is a function of predetermined data including the 
electronic serial number (ESN) of said mobile station. 

16. The mobile station of claim 15 wherein said data 
further includes the system identification of the home system 
(SIDH) of said mobile station. 

17. The mobile station of claim 15 wherein said data 
further includes a predetermined SEED value. 

18. The mobile station of claim 10 wherein said possible 
A-key values further include a user-entered value and said 
mobile station further comprises means for setting said 
A-key in said memory to said user-entered value if said 
command indicates the selection of said user-entered value. 

19. The method of claim 18 wherein said user-entered 
value is validated prior to setting said A-key in said memory 
to said user-entered value. 

20. The mobile station of claim 18 further comprising 
means for displaying a list of possible alphanumeric iden- 
tifications for said user-entered A-key value from which list 
an alphanumeric identification can be selected for storing 
with said user-entered A-key value in said memory. 
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